CVE-2013-4319

{"id": "CVE-2013-4319", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 9.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:S/C:C/I:C/A:C", "authentication": "SINGLE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 8.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2013-10-11T22:55:40.067", "references": [{"url": "http://www.debian.org/security/2013/dsa-2770", "source": "secalert@redhat.com"}, {"url": "http://www.openwall.com/lists/oss-security/2013/09/09/11", "source": "secalert@redhat.com"}, {"url": "http://www.openwall.com/lists/oss-security/2013/09/09/4", "source": "secalert@redhat.com"}, {"url": "http://www.supercluster.org/pipermail/torqueusers/2013-September/016098.html", "tags": ["Patch", "Vendor Advisory"], "source": "secalert@redhat.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-264"}]}], "descriptions": [{"lang": "en", "value": "pbs_mom in Terascale Open-Source Resource and Queue Manager (aka TORQUE Resource Manager) 2.5.x, 4.x, and earlier does not properly restrict access by unprivileged ports, which allows remote authenticated users to execute arbitrary jobs by submitting a command."}, {"lang": "es", "value": "pbs_mom en Terascale Open-Source Resource and Queue Manager (TORQUE Resource Manager) 2.5.x, 4.x y anteriores no restringe apropiadamente el acceso en puertos sin privilegios, lo que permite a usuarios remotos autenticados ejecutar trabajos de forma arbitraria enviando un comando."}], "lastModified": "2013-10-15T16:05:34.140", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E6AFCB45-8F0A-4A77-B367-5A3DCB99CBB3", "versionEndIncluding": "4.0.2"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A9B0FF36-5F53-458B-A8F5-76A5598AD5E3"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CA635A02-A184-4A3F-BA51-B63788D405B1"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.1.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "42B445B1-F118-4A79-A750-C1CB8BA6E29F"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.1.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2B9DDF87-4C82-4223-A309-357626BD45B9"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.1.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5AA4F170-C424-47C6-9C2E-6CE3EEC90682"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.1.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3D3402F0-BAD6-4BBD-84FA-9F1155C50959"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.1.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BBDA46FC-F177-4781-B627-EFE44E373908"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.1.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B1F32984-C6CC-40C5-AF8C-566DD547F133"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.1.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "96E8F3C3-21B0-4DCC-8D50-075E5F66B1E0"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4BFB3397-B156-48F1-8BE1-1777FE234669"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1AE9F4D9-A9C8-4ED6-9769-9A188FFEE66A"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.3.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "52382748-8CBE-4282-B2F1-944BBFADAA2D"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.3.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "03782180-540D-418B-BDDF-66AAE92C2489"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.3.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AEE8B404-9994-452E-AF50-1F043077C934"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.3.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CB1B2BE7-C643-4364-892C-E3E6E3166076"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.3.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "36036E37-005D-431C-8FBF-9BE74A8B96AA"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.3.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "48476BE8-EDE4-4CE8-828F-8C867E0EB587"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.3.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "91E7EBE0-9C1D-4CEB-A2C2-F3C984F85F1F"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.3.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8977C6E9-E91B-42E5-9263-B7FE847F5F84"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.3.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3A02A80A-D348-4E04-823F-C35588D87DE9"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.3.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5BDE1D1A-AA48-418C-A676-52CA44F1720E"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.3.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E91EE0D5-0DF5-473D-8514-86B96815D08F"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.3.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9F2DADE5-FA3B-495C-9938-77FBD47E0F5D"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.3.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F2CE5C0B-64BC-41E9-B88E-52F81D7C4854"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.3.13:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0458C6C6-A30A-4EAE-85A8-EB3E3E2457BF"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.4.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2B283D64-6A37-49C8-976A-102D386DEB3F"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.4.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "42AE967B-2848-4612-82CD-76CD1B32DCBB"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.4.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "95D943C4-3B5F-4B90-B086-42F601B12926"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.4.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1EF4FA8A-8745-46D3-B97F-229CD50FDB42"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.4.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "389CF919-DDE9-4CE1-AF5C-7889492EDEED"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.4.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4272F841-20B1-43E1-83DD-7C85CEC17D97"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.4.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "96BDDA2F-EE08-4C80-BBB7-019D80237B1A"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.4.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "374849F8-BF91-4607-BB8E-E7984EEA4B15"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.4.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C6E1F44E-7AB4-4667-B2DB-C69825B86415"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.4.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FEC9F913-C9E6-4719-AB49-9238DBEBF8C1"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.4.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D65D196D-F42F-4D52-86C0-33B29960251D"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.4.13:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "09ED4C15-2717-43B4-B488-13397C712AAA"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.4.14:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "41CDC415-F1F6-4605-896F-E65D513F2AA8"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.4.15:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "29AF4F93-33E1-4D1E-9C0E-50A5E26F13ED"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.4.16:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6E2C5780-B342-44F4-A7B9-EF38296CCCC7"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.4.17:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EE1FD02F-30D4-4D91-9A03-28CFCF4702C8"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.5.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "682462F9-38E2-4631-8AE2-4ACC2BFDA336"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F484AC97-0A7C-42D7-8A8A-3F0EE951A7E1"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.5.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F929EC66-9E7B-4D8D-AA36-DAE4DF96C01F"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.5.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "40E5D70B-0965-4794-BD25-42F7C189AD0B"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.5.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E3287BE3-DF6B-4C81-9065-50BF91B37664"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.5.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "78083338-09F7-4C94-AF55-4998640A5ABE"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.5.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A7010B77-6FD0-4A51-81BA-19DA1F2D4881"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.5.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4CA855F9-CAA9-4B65-AAEE-5AA36F8F9538"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.5.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CCBEBC0F-4AE4-4D94-B1E5-503FE2039D43"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.5.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1C896A54-9557-4B24-8542-98C025D34B07"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.5.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "257109FC-7E26-4EBB-9059-58D418EA4A6D"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.5.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "956F57CD-314F-41DC-B76D-CC847C3F12DA"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.5.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CE18F486-1C07-4388-B8E6-A942143A18FC"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:2.5.13:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E157EA4C-051A-4195-886B-016BC1616A46"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:3.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "31EC9324-BA9A-47ED-86BC-778DD22DAF78"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:3.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B3E948BE-D166-47B7-A306-B22DF3E543C5"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:3.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9B873808-DEAE-4369-A094-84BF6536A378"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:3.0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DCC7ADDD-C06F-495D-8BC7-7E99718E0D39"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:3.0.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1635C9EF-2ECA-4414-81F3-46F472B5FCD7"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:3.0.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9E60A832-0661-4CA9-BA12-17060F8FDEEF"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:3.0.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "02E624A3-919A-4B47-B9B8-D2B73285498B"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:4.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "75354BA4-73A5-428E-A8B8-9C2FBC5DC661"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:4.1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "600EF298-9DCC-4508-9C9A-8228A4B28248"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:4.1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "10F38FFE-F79A-43D5-931F-D50FC5B90E9E"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:4.1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "50D9AE0E-D59F-4378-8911-8D24720BFD98"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:4.1.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "14884485-DA3B-4006-B7DA-0E8455A7F822"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:4.1.5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "836B963D-975A-4A4A-A92F-E61AE59EF8FE"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:4.1.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8B6F8679-A72E-4409-80E3-144CDC6B539F"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:4.1.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C45D8E60-06DC-42DC-AEA0-7011241FE040"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:4.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "95F76147-9F2D-4937-A27D-4B2A752A5E62"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:4.2.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "95226E07-3F24-458C-A42B-DDA00A0F7CA5"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:4.2.3.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A309E3F1-8453-438A-B05C-A02C2F295790"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:4.2.4.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9F6A6CB2-8C8C-47B5-9A4A-604C15CE1E27"}, {"criteria": "cpe:2.3:a:adaptivecomputing:torque_resource_manager:4.2.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "56C120C3-1971-4E5C-990E-3DC2DE148BE4"}], "operator": "OR"}]}], "sourceIdentifier": "secalert@redhat.com"}